django-auditlog/auditlog/admin.py

from functools import cached_property

from django.conf import settings
from django.contrib import admin
from django.contrib.auth import get_user_model
from django.core.paginator import Paginator
from django.utils.translation import gettext_lazy as _

from auditlog.count import limit_query_time
from auditlog.filters import (
    CIDFilter,
    FieldFilter,
    ResourceTypeFilter,
    ShortActorFilter,
    get_timestamp_filter,
)
from auditlog.mixins import LogEntryAdminMixin
from auditlog.models import LogEntry


class TimeLimitedPaginator(Paginator):
    """A PostgreSQL-specific paginator with a hard time limit for total count of pages."""

    @cached_property
    @limit_query_time(
        getattr(settings, "AUDITLOG_PAGINATOR_TIMEOUT", 500), default=100000
    )
    def count(self):
        return super().count


@admin.register(LogEntry)
class LogEntryAdmin(admin.ModelAdmin, LogEntryAdminMixin):
    list_display = [
        "created",
        "resource_url",
        "action",
        "msg_short",
        "user_url",
        "cid_url",
    ]
    search_fields = [
        "timestamp",
        "object_repr",
        "changes",
        "actor__first_name",
        "actor__last_name",
        f"actor__{get_user_model().USERNAME_FIELD}",
    ]
    list_filter = [
        "action",
        ShortActorFilter,
        ResourceTypeFilter,
        FieldFilter,
        ("timestamp", get_timestamp_filter()),
        CIDFilter,
    ]
    readonly_fields = ["created", "resource_url", "action", "user_url", "msg"]
    fieldsets = [
        (None, {"fields": ["created", "user_url", "resource_url", "cid"]}),
        (_("Changes"), {"fields": ["action", "msg"]}),
    ]
    list_select_related = ["actor", "content_type"]
    show_full_result_count = False
    paginator = TimeLimitedPaginator

    def has_add_permission(self, request):
        return False

    def has_change_permission(self, request, obj=None):
        return False

    @cached_property
    def _own_url_names(self):
        return [pattern.name for pattern in self.urls if pattern.name]

    def has_delete_permission(self, request, obj=None):
        if (
            request.resolver_match
            and request.resolver_match.url_name not in self._own_url_names
        ):
            # only allow cascade delete to satisfy delete_related flag
            return super().has_delete_permission(request, obj)
        return False

    def get_queryset(self, request):
        self.request = request
        return super().get_queryset(request=request)
Allow cascade deletion of auditlog entries (#556) * Allow cascade deletion of auditlog entries * Cache iteration over self.urls 2023-08-27 09:12:39 +00:00			`from functools import cached_property`

Replace dumb paginator with a time-limited one 2020-04-07 08:43:07 +00:00			`from django.conf import settings`
added a simple admin interface for audit log entries 2016-08-16 02:38:36 +00:00			`from django.contrib import admin`
Support search by custom USERNAME_FIELD 2022-03-15 10:49:19 +00:00			`from django.contrib.auth import get_user_model`
Shave off two SELECT COUNT(*) from admin page 2019-08-22 15:24:10 +00:00			`from django.core.paginator import Paginator`
Complete translation with gettext_lazy (#474) 2022-12-14 10:31:17 +00:00			`from django.utils.translation import gettext_lazy as _`
Shave off two SELECT COUNT(*) from admin page 2019-08-22 15:24:10 +00:00
Replace relative imports with absolute 2021-06-24 11:28:58 +00:00			`from auditlog.count import limit_query_time`
			`from auditlog.filters import (`
Merge cid from upstream 2023-07-13 15:56:46 +00:00			`CIDFilter,`
Blacken the code 2021-06-24 10:04:48 +00:00			`FieldFilter,`
Apply isort to the code base 2021-06-24 11:33:30 +00:00			`ResourceTypeFilter,`
			`ShortActorFilter,`
Blacken the code 2021-06-24 10:04:48 +00:00			`get_timestamp_filter,`
			`)`
Apply isort to the code base 2021-06-24 11:33:30 +00:00			`from auditlog.mixins import LogEntryAdminMixin`
			`from auditlog.models import LogEntry`
added a simple admin interface for audit log entries 2016-08-16 02:38:36 +00:00

Replace dumb paginator with a time-limited one 2020-04-07 08:43:07 +00:00			`class TimeLimitedPaginator(Paginator):`
Export the logic to limit database query time 2020-06-11 14:01:19 +00:00			`"""A PostgreSQL-specific paginator with a hard time limit for total count of pages."""`
Blacken the code 2021-06-24 10:04:48 +00:00
Replace dumb paginator with a time-limited one 2020-04-07 08:43:07 +00:00			`@cached_property`
Blacken the code 2021-06-24 10:04:48 +00:00			`@limit_query_time(`
			`getattr(settings, "AUDITLOG_PAGINATOR_TIMEOUT", 500), default=100000`
			`)`
Shave off two SELECT COUNT(*) from admin page 2019-08-22 15:24:10 +00:00			`def count(self):`
Export the logic to limit database query time 2020-06-11 14:01:19 +00:00			`return super().count`
Shave off two SELECT COUNT(*) from admin page 2019-08-22 15:24:10 +00:00

Update pyupgrade and django-upgrade pre-commit hooks 2022-11-01 08:00:42 +00:00			`@admin.register(LogEntry)`
enhanced admin interface closes #1 2016-09-02 19:02:42 +00:00			`class LogEntryAdmin(admin.ModelAdmin, LogEntryAdminMixin):`
Added support for Correlation ID Co-authored-by: Hasan Ramezani <hasan.r67@gmail.com> 2022-12-23 14:09:32 +00:00			`list_display = [`
			`"created",`
			`"resource_url",`
			`"action",`
			`"msg_short",`
			`"user_url",`
			`"cid_url",`
			`]`
Blacken the code 2021-06-24 10:04:48 +00:00			`search_fields = [`
			`"timestamp",`
			`"object_repr",`
			`"changes",`
			`"actor__first_name",`
			`"actor__last_name",`
Support search by custom USERNAME_FIELD (#432) 2022-09-21 14:19:49 +00:00			`f"actor__{get_user_model().USERNAME_FIELD}",`
Blacken the code 2021-06-24 10:04:48 +00:00			`]`
			`list_filter = [`
			`"action",`
			`ShortActorFilter,`
			`ResourceTypeFilter,`
			`FieldFilter,`
			`("timestamp", get_timestamp_filter()),`
Merge cid from upstream 2023-07-13 15:56:46 +00:00			`CIDFilter,`
Blacken the code 2021-06-24 10:04:48 +00:00			`]`
			`readonly_fields = ["created", "resource_url", "action", "user_url", "msg"]`
enhanced admin interface closes #1 2016-09-02 19:02:42 +00:00			`fieldsets = [`
Added support for Correlation ID Co-authored-by: Hasan Ramezani <hasan.r67@gmail.com> 2022-12-23 14:09:32 +00:00			`(None, {"fields": ["created", "user_url", "resource_url", "cid"]}),`
Complete translation with gettext_lazy (#474) 2022-12-14 10:31:17 +00:00			`(_("Changes"), {"fields": ["action", "msg"]}),`
enhanced admin interface closes #1 2016-09-02 19:02:42 +00:00			`]`
Blacken the code 2021-06-24 10:04:48 +00:00			`list_select_related = ["actor", "content_type"]`
Shave off two SELECT COUNT(*) from admin page 2019-08-22 15:24:10 +00:00			`show_full_result_count = False`
Replace dumb paginator with a time-limited one 2020-04-07 08:43:07 +00:00			`paginator = TimeLimitedPaginator`
enhanced admin interface closes #1 2016-09-02 19:02:42 +00:00
Disable `add` button in admin ui Co-authored-by: Hasan Ramezani <hasan.r67@gmail.com> 2022-05-18 10:01:08 +00:00			`def has_add_permission(self, request):`
Disallow changing or deleting log entries 2022-11-14 12:25:33 +00:00			`return False`

			`def has_change_permission(self, request, obj=None):`
			`return False`

Allow cascade deletion of auditlog entries (#556) * Allow cascade deletion of auditlog entries * Cache iteration over self.urls 2023-08-27 09:12:39 +00:00			`@cached_property`
			`def _own_url_names(self):`
			`return [pattern.name for pattern in self.urls if pattern.name]`

Disallow changing or deleting log entries 2022-11-14 12:25:33 +00:00			`def has_delete_permission(self, request, obj=None):`
Allow cascade deletion of auditlog entries (#556) * Allow cascade deletion of auditlog entries * Cache iteration over self.urls 2023-08-27 09:12:39 +00:00			`if (`
			`request.resolver_match`
			`and request.resolver_match.url_name not in self._own_url_names`
			`):`
			`# only allow cascade delete to satisfy delete_related flag`
			`return super().has_delete_permission(request, obj)`
Disable `add` button in admin ui Co-authored-by: Hasan Ramezani <hasan.r67@gmail.com> 2022-05-18 10:01:08 +00:00			`return False`
Added support for Correlation ID Co-authored-by: Hasan Ramezani <hasan.r67@gmail.com> 2022-12-23 14:09:32 +00:00
			`def get_queryset(self, request):`
			`self.request = request`
			`return super().get_queryset(request=request)`